Section: .. / 0602-exploits /
| /// File Name: |
guestbookPHP.txt |
Description:
|
gastbuch versions 1.3.2 and below are susceptible to cross site scripting.
| | Author: | Micha Borrmann | | File Size: | 1092 | | Last Modified: | Feb 14 02:37:21 2006 |
| MD5 Checksum: | 144ce0b21664236abeb439e709045dc9 |
|
| /// File Name: |
halfLifeDoS.txt |
Description:
|
Remote denial of service exploit for Half-Life engines that cause it to fall in an infinite loop and stop processing requests.
| | Author: | Firestorm | | File Size: | 1080 | | Last Modified: | Feb 9 00:06:48 2006 |
| MD5 Checksum: | 66d32b957f64c66400a685f8b6a22b1e |
|
| /// File Name: |
EV0076.txt |
Description:
|
Guestext version 1.0 suffers from a remote command execution flaw. Exploitation details provided.
| | Author: | Aliaksandr Hartsuyeu | | Homepage: | http://evuln.com/ | | File Size: | 1074 | | Related CVE(s): | CVE-2006-0777 | | Last Modified: | Feb 25 23:28:21 2006 |
| MD5 Checksum: | e9f94d35db89e754dc5205441404d836 |
|
| /// File Name: |
cyberXSS.txt |
Description:
|
CyberShop Ultimate E-Commerce is susceptible to cross site scripting attacks.
| | Author: | B3g0k | | Homepage: | http://www.patriotichack.org/ | | File Size: | 1070 | | Last Modified: | Feb 4 09:31:16 2006 |
| MD5 Checksum: | 9520095271be59ea25d9c26d7bfd122d |
|
| /// File Name: |
EV0075.txt |
Description:
|
Teca Diary PE version 1.0 is susceptible to SQL injection attacks. Exploitation details provided.
| | Author: | Aliaksandr Hartsuyeu | | Homepage: | http://evuln.com/ | | File Size: | 1066 | | Last Modified: | Feb 25 22:52:05 2006 |
| MD5 Checksum: | c937b0a487e08d188219bba7144e571b |
|
| /// File Name: |
PentacleSQL.txt |
Description:
|
Pentacle In-Out Board versions 6.03 and below suffer from a SQL injection flaw in newsdetailsview.asp.
| | Author: | nukedx | | Homepage: | http://www.nukedx.com | | File Size: | 1035 | | Last Modified: | Feb 25 23:57:38 2006 |
| MD5 Checksum: | fef12d62b3fe84a2836fd1b5c31d4c67 |
|
| /// File Name: |
EV0056.txt |
Description:
|
GuestBookHost version 2005.04.25 is susceptible to an authentication bypass flaw.
| | Author: | Aliaksandr Hartsuyeu | | File Size: | 1001 | | Related CVE(s): | CVE-2006-0542 | | Last Modified: | Feb 13 01:12:23 2006 |
| MD5 Checksum: | 3ab3d1ff1201c1f343fb1823c97c57f1 |
|
| /// File Name: |
NSAG-202-25.02.2006.txt |
Description:
|
NSA Group Advisory - Website Generator version 3.3 suffers from an arbitrary remote PHP file inclusion flaw.
| | Homepage: | http://www.nsag.ru/ | | File Size: | 985 | | Last Modified: | Feb 25 23:46:42 2006 |
| MD5 Checksum: | 7804124a6a7b0e99f86a6ee674060f9c |
|
| /// File Name: |
MyPHPNuke188.txt |
Description:
|
MyPHPNuke versions 1.8.8 and below are susceptible to multiple cross site scripting vulnerabilities. Details provided.
| | Author: | nukedx | | Homepage: | http://www.nukedx.com | | File Size: | 975 | | Last Modified: | Feb 25 23:40:40 2006 |
| MD5 Checksum: | bd1d88960738101f0b46b4df7e606232 |
|
| /// File Name: |
DSR-cisco-pikkemand.sh |
Description:
|
Cisco AP remote denial of service exploit that makes use of maliciously crafted ARP requests.
| | Author: | kokanin | | Related File: | cisco-sa-20060112-wireless.txt | | File Size: | 969 | | Last Modified: | Feb 2 05:29:41 2006 |
| MD5 Checksum: | d02e7efd73f0f14bbf68c9a6387031f4 |
|
| /// File Name: |
eZpublishXSS.txt |
Description:
|
eZ publish versions 3.7.3 and below suffer from cross site scripting flaws.
| | Author: | nukedx | | Homepage: | http://www.nukedx.com | | File Size: | 953 | | Last Modified: | Feb 25 23:59:17 2006 |
| MD5 Checksum: | ab2d214203503739e143e64a1888a525 |
|
| /// File Name: |
RCblog.xpl |
Description:
|
RCBlog 1.0.3 and 1.0.2 password disclosure exploit.
| | Author: | Hessam-x | | Homepage: | http://www.hessamx.net | | File Size: | 914 | | Last Modified: | Feb 22 14:16:29 2006 |
| MD5 Checksum: | ac5daaba30961e3a866d7dc42cc4dddf |
|
| /// File Name: |
myquiz101.pl.txt |
Description:
|
MyQuiz version 1.01 remote command execution exploit.
| | Author: | Hessam-x | | Homepage: | http://www.hessamx.net | | File Size: | 906 | | Last Modified: | Feb 8 00:13:03 2006 |
| MD5 Checksum: | 7900c395f52e9f8a89832ae176214813 |
|
| /// File Name: |
imageVue16.1.txt |
Description:
|
The upload script in ImageVue 16.1 does not perform proper checking, thus allowing an attacker to upload a file to any writable directory.
| | Author: | zjieb | | File Size: | 887 | | Last Modified: | Feb 13 03:54:22 2006 |
| MD5 Checksum: | ac2fd08ac3d1f1bf95a207cbda525b77 |
|
| /// File Name: |
PentacleBypass.txt |
Description:
|
Pentacle In-Out Board versions 6.03 and below suffer from a SQL injection flaw in login.asp that allows for authentication bypass.
| | Author: | nukedx | | Homepage: | http://www.nukedx.com | | File Size: | 860 | | Last Modified: | Feb 25 23:56:44 2006 |
| MD5 Checksum: | ebfc4d1823dd0b1a3a33ba4e0fef444d |
|
| /// File Name: |
BrowserCRMXSS.txt |
Description:
|
BrowserCRM suffers from cross site scripting flaws.
| | Author: | Preben Nylokken | | File Size: | 649 | | Last Modified: | Feb 2 05:53:09 2006 |
| MD5 Checksum: | 2cc4ea5a3e2afa1a0dad673658c11e7c |
|
| /// File Name: |
DSR-QNX6.2.1-phfont.sh.txt |
Description:
|
Local root exploit for QNX Neutrino RTOS's phfont command. Affects QNX Neutrino RTOS version 6.2.1. Earlier versions may also be susceptible.
| | Author: | kokanin | | Homepage: | http://www.lort.dk | | Related File: | 02.07.06-2.txt | | File Size: | 616 | | Last Modified: | Feb 9 21:06:46 2006 |
| MD5 Checksum: | 671f10313114f264e395db3183a96069 |
|
| /// File Name: |
dbmanDefault.txt |
Description:
|
DBMan for Windows and Unix comes with default passwords embedded.
| | Author: | Fireboy | | File Size: | 547 | | Last Modified: | Feb 4 09:29:16 2006 |
| MD5 Checksum: | 3ada1e0346fcd682c1968d3ed2722590 |
|
| /// File Name: |
cerberusXSS.txt |
Description:
|
Cerberus Helpdesk is susceptible to cross site scripting attacks.
| | Author: | Preben Nylokken | | File Size: | 465 | | Last Modified: | Feb 2 05:52:29 2006 |
| MD5 Checksum: | 45dc1a5da689b8c78d7b5c6f2bacea9f |
|
| /// File Name: |
sPaizXSS.txt |
Description:
|
sPaiz-Nuke is susceptible to cross site scripting attacks.
| | Author: | Night_Warrior | | File Size: | 440 | | Last Modified: | Feb 1 21:00:56 2006 |
| MD5 Checksum: | f78200187af39e42787ddb2ce2c00b9c |
|
| /// File Name: |
bbXSS.txt |
Description:
|
Blockbuster.com is susceptible to cross site scripting attacks.
| | Author: | Matthew Benenati | | File Size: | 403 | | Last Modified: | Feb 25 17:18:47 2006 |
| MD5 Checksum: | ed20c72dcd2fb6ad26f21d4fffa43e27 |
|
| /// File Name: |
whompSQL.txt |
Description:
|
Whomp Real Estate Manager XP 2005 is susceptible to SQL injection attacks.
| | Author: | Night_Warrior | | File Size: | 310 | | Last Modified: | Feb 8 23:52:08 2006 |
| MD5 Checksum: | 57726d8067dbc4a3d3c95fd29a785cce |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
